1. Symantec/
  2. Security Response/
  3. W32.HLLW.Infex.B@mm

W32.HLLW.Infex.B@mm

Discovered:
September 26, 2003
Updated:
February 13, 2007 12:08:27 PM
Type:
Worm
Systems Affected:
Windows

W32.HLLW.Infex.B@mm is a mass-mailing worm that uses Microsoft Outlook to send itself to all the contacts in Outlook Address Book. The email attachment is q83d.rar.

The subject line is one of the following:
  • VERY DANGEROUS I-WORM
  • 64bit Notepad!
  • Do you Get spam?
  • Usama Bin laden II ?
  • Saddam Dead or Alive?
  • Nelson Mandella dead?
  • Bush Resigns
  • STOCK MARKET FALLS 80%
  • Bill Gates ARRESTED
  • Undocumented Secrets about <%string%>
Where %string% is one of the following:
  • Microsoft
  • Windows
  • Aliens
  • Televisions
  • PayPhones

The worm attempts to spread itself through some file-sharing networks, such as BearShare, eDonkey2000, Gnucleus, Grokster, KaZaA, KaZaA Lite, KMD, Limewire, Morpheus, Overnet, Shareaza, Rapigator, Toadnode, Tesla, WinMX, and XoloX. It also attempts to send itself to other ICQ users.

This threat is written in the Microsoft Visual Basic programming language and is compressed with FSG.

Antivirus Protection Dates

  • Initial Rapid Release version September 29, 2003
  • Latest Rapid Release version September 28, 2010 revision 054
  • Initial Daily Certified version September 29, 2003
  • Latest Daily Certified version September 28, 2010 revision 036
  • Initial Weekly Certified release date October 1, 2003
Click here for a more detailed description of Rapid Release and Daily Certified virus definitions.
Writeup By: Yana Liu

Search Threats

Search by name
Example: W32.Beagle.AG@mm
STAR Antimalware Protection Technologies
2016 Internet Security Threat Report, Volume 21
  • Twitter
  • Facebook
  • LinkedIn
  • Google+
  • YouTube